SteveLightspeed

If anyone is running the Phpbb message board system on their sites, check this out

http://www.phpbb.com/phpBB/viewtopic.php?f=14&t=244451

We just found out about this, unfortunately we learned the hard way after hackers used this exploit to seriously fuck us.

This exploit is well known by hackers, and porn sites ARE BEING TARGETED!


Steve Lightspeed

__________________
Abra-cadabra!

KRL

I think that alert was posted Steve about 2 weeks ago. Or is this a new one??

__________________
If you would like to develop your domains, you can lease inexpensive foreign labor
from the leaders in the field at iWebmasters.com TO LOWER YOUR COSTS AND INCREASE YOUR PRODUCTION!
*** *** *** *** *** *** *** *** *** *** *** ***
Domains Adult News KRL's Newsletter Biz Tips Just Listed Domains

bllott

thanks man!

SteveLightspeed

Well, if it was, my whole staff missed it, and we read GFY every day.

Couldn't hurt to mention it again, right? I wish someone would have reposted it for us to find out about this before this week.

Steve Lightspeed

__________________
Abra-cadabra!

Johny Traffic

Get them to start reading it with there eyes open

Its been posted many many times http://www.gofuckyourself.com/showth...hreadid=400875

But worth bringing up again Its a real fucker

__________________


hosted flv's, hosted galleries, morphing rss feeds, free content, free sites, hosted blog

Cory W

We replaced that code asap. Our board is not connected to our Weg servers, but my concern was the user/pass information in the phpbb sql database.

Out of curiousity Steve, what did they attempt to do?

On a side note, I would import all of that information into V-Bulletin. I have been saying this for the past year. It takes about 2 hours for a good programmer to use the innate import script. It is just safer.

__________________
ICQ: 292310358
Offering writing and content services (mainstream).
Marketing for L3 Payments

SteveLightspeed

Thanks Johnny Traffic,

It may just be that this board moves too fast sometimes, or we got distracted with something else.

Wish I would have seen your warning myself.


Steve Lightspeed

__________________
Abra-cadabra!

Cory W

Yep, thanks for your post.

__________________
ICQ: 292310358
Offering writing and content services (mainstream).
Marketing for L3 Payments

SteveLightspeed

They deleted our entire Lightspeed4 database. We are still working with Natnet to recover everything. Thank God for Natnet, or we would be in serious deep shit.

Steve Lightspeed

__________________
Abra-cadabra!

Fake Nick

hahahaha how could you have missed the thread about Saudi Arabia NOT being in ASIA ? ? ?

that thread was started about a board being hacked by some Saudi dudes who used this exploit


someone called them asian hackers but the oracle porn dissagreed and try to convince the world (read gfy) that Saudi Arabia is NOT in asia


how could all of your employees have missed a 5 page thread that went on for couple of days !! !


they are taking advantage of you Steve ! someone should get fired over this

dirtysouth

One of the funniest threads of the year for sure!